The Register on MSN
FortiGate firewalls hit by silent SSO intrusions and config theft
Admins say attackers are still getting in despite recent patches FortiGate firewalls are getting quietly reconfigured and ...
Fortinet has released patches for CVE-2026-24858, an authentication bypass exploited in the wild to compromise devices.
Automated infections of potentially fully patched FortiGate devices are allowing threat actors to steal firewall ...
The Register on MSN
Fortinet admits FortiGate SSO bug still exploitable despite December patch
Fix didn't quite do the job – attackers spotted logging in Fortinet has confirmed that attackers are actively bypassing a December patch for a critical FortiCloud single sign-on (SSO) authentication ...
The cybersecurity company pointed out that the fresh campaign resembles December 2025 attacks targeting CVE-2025-59718 and CVE-2025-59719, two critical-severity defects impacting the FortiCloud SSO ...
To stop the ongoing attacks, the cybersecurity vendor took the drastic step of temporarily disabling FortiCloud single ...
Network security giant Fortinet locked out cloud customers from its single sign-on service until they update device firmware ...
All SAML SSO implementations, including FortiCloud SSO, are vulnerable to authentication bypass and malicious configuration ...
Fortinet firewalls are under threat from a single sign-on (SSO) vulnerability, which allows unauthorized configuration changes.
Fortinet FortiGate devices are being targeted in automated attacks that create rogue accounts and steal firewall ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results